X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - SECURITYAFFAIRS.CO - A La Une - 05/01/2025 19:06

Nuclei flaw allows signature bypass and code execution

A vulnerability in Nuclei, an open-source vulnerability scanner, could allow attackers to bypass signature checks and execute malicious code. A high-severity security flaw, tracked as CVE-2024-43405 (CVSS score of 7.4), in the open-source vulnerability scanner ProjectDiscovery’s Nuclei, could allow attackers to bypass signature checks and execute malicious code. The Wiz’s engineering team discovered the vulnerability. The vulnerability […]

Articles similaires

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

Critical ExifTool Vulnerability Allows Malicious Images to Execute Code on macOS

itsecuritynews.info - 09/Mar 06:07

Many users believe macOS is inherently resistant to malware, but a newly discovered vulnerability proves otherwise. Kaspersky’s Global Research and...

Sorry! Image not available at this time

Cisco Secure Firewall Management Flaw Allows Remote Code Execution

itsecuritynews.info - 05/Mar 08:32

Cisco recently disclosed a critical security vulnerability affecting its Secure Firewall Management Centre (FMC) software. This severe flaw carries a...

Sorry! Image not available at this time

Cisco Secure Firewall Management Flaw Allows Remote Code Execution

itsecuritynews.info - 05/Mar 08:32

Cisco recently disclosed a critical security vulnerability affecting its Secure Firewall Management Centre (FMC) software. This severe flaw carries a...

Sorry! Image not available at this time

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

securityaffairs.co - 12/Mar 13:25

An unauthenticated SQL injection flaw (CVE-2026-2413) in the Ally WordPress plugin, used on 400K+ sites, could allow attackers to steal sensitive...

Sorry! Image not available at this time

Chrome security flaw enabled spying via Gemini Live assistant

securityaffairs.co - 03/Mar 08:48

A Google Chrome vulnerability lets malicious extensions hijack Gemini Live to spy on users and steal sensitive files. Researchers at Palo Alto...

Sorry! Image not available at this time

Gogs Flaw Could Let Attackers Quietly Overwrite Large File Storage Data

itsecuritynews.info - 10/Mar 10:32

A critical security vulnerability has been identified in Gogs, a widely used open-source self-hosted Git service. / Tracked as CVE-2026-25921, this...

Sorry! Image not available at this time

Gogs Flaw Could Let Attackers Quietly Overwrite Large File Storage Data

itsecuritynews.info - 10/Mar 10:32

A critical security vulnerability has been identified in Gogs, a widely used open-source self-hosted Git service. / Tracked as CVE-2026-25921, this...

Sorry! Image not available at this time

Critical Nginx UI flaw CVE-2026-27944 exposes server backups

securityaffairs.co - 08/Mar 19:10

Nginx UI flaw CVE-2026-27944 lets attackers download and decrypt server backups without authentication, exposing sensitive data on public management...

Les derniers communiqués